A flaw was found in QtPass before 1.2.1, when using the built-in password generator. All passwords generated with "QtPass"'s built-in password generator are possibly predictable and enumerable. This only applies to the QtPass GUI. [UPSTREAM BUG] https://github.com/IJHack/QtPass/issues/338 https://lists.zx2c4.com/pipermail/password-store/2018-January/003165.html [UPSTREAM PATCH] https://github.com/IJHack/QtPass/releases/tag/v1.2.1
Created qtpass tracking bugs for this issue: Affects: fedora-all [bug 1533600]